ISSN: 2225-8329
Open access
This study conducts a systematic literature review (SLR) to examine the relationship between tax digitalisation and cybercrime. While digital technologies have transformed tax administration by improving compliance and efficiency, they have simultaneously introduced new vulnerabilities to cyber threats such as identity theft, phishing, ransomware, and data breaches. Using PRISMA guidelines, this review systematically analysed peer-reviewed articles and official reports published between 2013 and 2022, sourced from databases including Scopus and Web of Science. Out of 223 initial records, 11 studies met the inclusion criteria. The review reveals three dominant themes: (i) the nature and typology of cyber threats in digital tax systems, (ii) the regulatory and institutional responses across jurisdictions, and (iii) the role of technological solutions such as blockchain, artificial intelligence, and secure digital identity systems. The findings highlight that small businesses and individual taxpayers are particularly vulnerable due to limited cyber awareness and insufficient safeguards. Policymakers must balance technological adoption with robust cybersecurity frameworks to safeguard trust in tax systems. This study contributes by consolidating fragmented research and proposing a research agenda for emerging economies. Future work should expand to empirical cross-country analyses and evaluate the effectiveness of cybersecurity measures in sustaining digital tax compliance.
Association of Chartered Certified Accountants (ACCA). (2022). Making tax digital for VAT is coming ? are you ready? https://www.accaglobal.com/my/en/technical-activities/technical-resources-search/2022/March/making-tax-digital-for-vat-are-you-ready.html
Agrafiotis, I., Nurse, J. R. C., Goldsmith, M., Creese, S., & Upton, D. (2018). A taxonomy of cyber-harms: Defining the impacts of cyber-attacks and understanding how they propagate. Journal of Cybersecurity, 4(1), tyy006. https://doi.org/10.1093/cybsec/tyy006
Alhassan, M. M., Adjei-Quaye, A., & Alhassan, M. M. (2017). Information security in an organization. International Journal of Computer. https://www.researchgate.net/publication/314086143
Alibraheem, M., & Abdul-Jabbar, H. (2016). Electronic tax filing adoption and its impact on tax employees’ performance in Jordan: A proposed framework. World Applied Sciences Journal, 34(3), 393–399. https://doi.org/10.5829/idosi.wasj.2016.34.3.15671
Allianz Global Corporate & Specialty. (2022). Allianz risk barometer 2022. Allianz SE. https://www.agcs.allianz.com/content/dam/onemarketing/agcs/agcs/reports/Allianz-Risk-Barometer-2022.pdf
Bernama. (2019, April 8). RM67.6 million lost to cybercrimes in Q1 2019. New Straits Times. https://www.nst.com.my/news/crime-courts/2019/04/482208/rm676-million-lost-cyber-crimes-q1-2019
Booth, A., Papaioannou, D., & Sutton, A. (2016). Systematic approaches to a successful literature review (2nd ed.). SAGE Publications.
Brink, W. D., & Hansen, V. J. (2020). The effect of tax authority-developed software on taxpayer compliance. Accounting Horizons, 34(1), 1–18. https://doi.org/10.2308/ACCH-52511
Brody, R. G., Haynes, C. M., & Mejia, H. (2014). Income tax return scams and identity theft. Accounting and Finance Research, 3(1), 90–97. https://doi.org/10.5430/afr.v3n1p90
Brower, D., & McCormick, M. (2021, May 13). Colonial pipeline resumes operations following ransomware attack. Financial Times. https://www.ft.com/content/b6ac99ea-d7c6-49dd-b7d7-1284ce2e85c0
Burnes, D., DeLiema, M., & Langton, L. (2020). Risk and protective factors of identity theft victimization in the United States. Preventive Medicine Reports, 17, 101058. https://doi.org/10.1016/j.pmedr.2020.101058
Cebula, J. J., Popeck, M. E., & Young, L. R. (2014). A taxonomy of operational cyber security risks version 2. Software Engineering Institute. http://www.sei.cmu.edu
Ernst & Young Global Ltd. (2020). How digitalisation is changing corporate income tax. https://www.ey.com/en_kz/tax/how-digitalisation-is-changing-corporate-income-tax
Henriette, E., Feki, M., & Boughzala, I. (2015). The shape of digital transformation: A systematic literature review. In Proceedings of the 9th Mediterranean Conference on Information Systems. https://aisel.aisnet.org/mcis2015/10
Hermanto, A. H., Windasari, N. A., & Purwanegara, M. S. (2022). Taxpayers’ adoption of online tax return reporting: Extended meta-UTAUT model perspective. Cogent Business & Management, 9(1), 2110724. https://doi.org/10.1080/23311975.2022.2110724
Hidayat, K., Utama, M. S., Nimran, U., & Prasetya, A. (2022). The effect of attitude and religiosity on tax compliant intention moderated by the utilization of e-filing. Journal of Financial Services Marketing. https://doi.org/10.1057/s41264-022-00171-y
Hultgren, A., Hasseldine, J., & Nash, J. (2022). Identity theft tax refund fraud in the United States. eJournal of Tax Research, 19(2), 424–437.
IBM. (2022). Cost of a data breach report 2022 – Malaysia. IBM Security. https://www.ibm.com/my-en/security/data-breach
Internal Revenue Service. (2014). IRS releases the “Dirty Dozen” tax scams for 2014: Identity theft, phone scams lead list. https://www.irs.gov/newsroom/irs-releases-the-dirty-dozen-tax-scams-for-2014-identity-theft-phone-scams-lead-list
Internal Revenue Service. (2021). IRS announces “Dirty Dozen” tax scams for 2021. https://www.irs.gov/newsroom/irs-announces-dirty-dozen-tax-scams-for-2021
Internal Revenue Service. (2022). Taxpayer guide to identity theft. https://www.irs.gov/newsroom/taxpayer-guide-to-identity-theft
Inus, K. (2022, August 11). RM560mil lost due to cyber crimes last year, says Home Ministry. The Star. https://www.thestar.com.my/news/nation/2022/08/11/rm560mil-lost-due-to-cyber-crimes-last-year-says-home-ministry
Jesson, J., Matheson, L., & Lacey, F. M. (2011). Doing your literature review: Traditional and systematic techniques. SAGE Publications.
Khan, F., Kim, J. H., Mathiassen, L., & Moore, R. (2021). Data breach management: An integrated risk model. Information and Management, 58(1), 103392. https://doi.org/10.1016/j.im.2020.103392
Kim, W., Jeong, O. R., Kim, C., & So, J. (2011). The dark side of the Internet: Attacks, costs and responses. Information Systems, 36(3), 675–705. https://doi.org/10.1016/j.is.2010.11.003
Lagodiienko, N., & Yakushko, I. (2021). Digital innovations in taxation: Bibliometric analysis. Marketing and Management of Innovations, 5(3), 66–77. https://doi.org/10.21272/mmi.2021.3-06
Lai, M. L., & Choong, K. F. (2010). Motivators, barriers and concerns in adoption of electronic filing system: Survey evidence from Malaysian professional accountants. American Journal of Applied Sciences, 7(4), 562–567. https://doi.org/10.3844/ajassp.2010.562.567
Leighton-Daly, M. (2019). Identity theft and tax crime: Has technology made it easier to defraud the revenue? eJournal of Tax Research, 16(3), 578–593.
Leu, J. F. Y., & Masri, R. (2019). Dilemma of SMEs in business digitization: A conceptual analysis of retail SMEs in Malaysia. International Transaction Journal of Engineering, Management, & Applied Sciences & Technologies, 10(7), 971–981. https://doi.org/10.14456/ITJEMAST.2019.88
Lewis, J. A., Smith, Z. M., & Lostri, E. (2020). The hidden costs of cybercrime. Center for Strategic and International Studies. https://www.csis.org/analysis/hidden-costs-cybercrime
Liberati, A., Altman, D. G., Tetzlaff, J., Mulrow, C., Gøtzsche, P. C., Ioannidis, J. P. A., Clarke, M., Devereaux, P. J., Kleijnen, J., & Moher, D. (2009). The PRISMA statement for reporting systematic reviews and meta-analyses of studies that evaluate healthcare interventions: Explanation and elaboration. BMJ, 339, b2700. https://doi.org/10.1136/bmj.b2700
Liew, N. S., & Choo, E. C. (2019). Redesigning for the digital economy: A study of SMEs in Southeast Asia. Ernst & Young. https://www.ey.com/en_sg/growth/growth-markets-services/ey-smes-in-southeast-asia-redesigning-for-the-digital-economy
Milne, G. R., Rohm, A. J., & Bahl, S. (2004). Consumers’ protection of online privacy and identity. Journal of Consumer Affairs, 38(2), 217–232.
Muturi, H. M., & Kiarie, N. (2015). Effects of online tax system on tax compliance among small taxpayers in Meru County, Kenya. International Journal of Economics, Commerce and Management, 3(12), 280–290. http://ijecm.co.uk/
Ngugi, B. K., Hung, K. T., & Li, Y. J. (2022). Reducing tax identity theft by identifying vulnerability points in the electronic tax filing process. Information & Computer Security, 30(2), 173–189. https://doi.org/10.1108/ICS-05-2021-0056
Nigrini, M. J., & Peters, J. S. (2018). Identity theft tax refund fraud: An analysis of the fraud schemes using IRS investigation summaries. Journal of Forensic & Investigative Accounting, 10(1), 1–25.
Olowska, M., Peshori, P., & Lan, S. (2020). The digitalisation of tax administration in China, India and Korea in the Fourth Industrial Revolution. Bulletin for International Taxation, 74(8), 421–432.
Oluka, A., & Nomlala, B. (2021). Tax compliance costs and the use of e-filing by SMMEs. Journal of Accounting and Management, 11(2), 50–61.
Page, M. J., McKenzie, J. E., Bossuyt, P. M., Boutron, I., Hoffmann, T. C., Mulrow, C. D., Shamseer, L., Tetzlaff, J. M., Akl, E. A., Brennan, S. E., et al. (2021). The PRISMA 2020 statement: An updated guideline for reporting systematic reviews. BMJ, 372, n71. https://doi.org/10.1136/bmj.n71
Pahlevan-Sharif, S., Mura, P., & Wijesinghe, S. N. R. (2019). A systematic review of systematic reviews in tourism. Journal of Hospitality and Tourism Management, 39, 158–165. https://doi.org/10.1016/j.jhtm.2019.04.001
Parviainen, P., Tihinen, M., Kääriäinen, J., & Teppola, S. (2017). Tackling the digitalisation challenge: How to benefit from digitalisation in practice. International Journal of Information Systems and Project Management, 5(1), 63–77. https://doi.org/10.12821/ijispm050104
Salleh, M. A. A., Majid, W. Z. N. A., Marzuki, M. M., Zakaria, M., & Ibrahim, Z. (2025). The acceptance of digital tax administration among SMEs in Malaysia: The application of UTAUT model. Pakistan Journal of Life and Social Sciences, 23(1), 44–58. https://doi.org/10.57239/PJLSS-2025-23.1.00449
Sheehan, B., Murphy, F., Kia, A. N., & Kiely, R. (2021). A quantitative bow-tie cyber risk classification and assessment framework. Journal of Risk Research, 24(12), 1619–1638. https://doi.org/10.1080/13669877.2021.1900337
Sheehan, B., Murphy, F., Mullins, M., & Ryan, C. (2019). Connected and autonomous vehicles: A cyber-risk classification framework. Transportation Research Part A: Policy and Practice, 124, 523–536. https://doi.org/10.1016/j.tra.2018.06.033
Smart, W. (2018). Lessons learned review of the WannaCry ransomware cyber attack. National Audit Office. https://www.nationalarchives.gov.uk/doc/open-government-licence/
Tahar, A., Riyadh, H. A., Sofyani, H., & Purnomo, W. E. (2020). Perceived ease of use, perceived usefulness, perceived security and intention to use e-filing: The role of technology readiness. Journal of Asian Finance, Economics and Business, 7(9), 537–547. https://doi.org/10.13106/JAFEB.2020.VOL7.NO9.537
The Institute of Risk Management. (2014). Cyber risk resources for practitioners. https://www.theirm.org/media/7237/irm-cyber-risk-resources-for-practitioners.pdf
U.S. Federal Trade Commission. (1998). Identity Theft and Assumption Deterrence Act. https://www.ftc.gov/legal-library/browse/rules/identity-theft-assumption-deterrence-act-text
U.S. Federal Trade Commission. (2022). Consumer Sentinel Network data book 2021. https://www.ftc.gov/system/files/ftc_gov/pdf/CSN%20Annual%20Data%20Book%202021%20Final%20PDF.pdf
U.S. Government Accountability Office. (2002). Identity theft: Greater awareness and use of existing data are needed. https://www.gao.gov/products/gao-02-766
Utama, M. S., Nimran, U., Hidayat, K., & Prasetya, A. (2022). Effect of religiosity, perceived risk, and attitude on tax compliant intention moderated by e-filing. International Journal of Financial Studies, 10(1), 1–14. https://doi.org/10.3390/ijfs10010008
Veeramootoo, N., Nunkoo, R., & Dwivedi, Y. K. (2018). What determines success of an e-government service? Validation of an integrative model of e-filing continuance usage. Government Information Quarterly, 35(2), 161–174. https://doi.org/10.1016/j.giq.2018.03.004
World Economic Forum. (2022). The global risks report 2022. World Economic Forum. https://www3.weforum.org/docs/WEF_The_Global_Risks_Report_2022.pdf
Yin Xia, L., Nor Aziati, A. H., Hamid Ahmad, A., & Seah, S. (2021). The factors and challenges affecting digital economy in Malaysia. In Conference on Management, Business, Innovation, Education and Social Science. https://www.researchgate.net/publication/352118174
Salleh, M. A. A., Majid, W. Z. N. A., & Marzuki, M. M. (2025). Tax Digitalisation and Cybercrime: A Systematic Literature Review. International Journal of Academic Research in Accounting, Finance and Management Sciences, 15(4), 197–210.
Copyright: © 2025 The Author(s)
Published by HRMARS (www.hrmars.com)
This article is published under the Creative Commons Attribution (CC BY 4.0) license. Anyone may reproduce, distribute, translate and create derivative works of this article (for both commercial and non-commercial purposes), subject to full attribution to the original publication and authors. The full terms of this license may be seen at: http://creativecommons.org/licences/by/4.0/legalcode